Wireshark · Wireshark-users: Re: [Wireshark-users] Tshark

Wireshark-users: Re: [Wireshark-users] Tshark - GTP problem

From: Salman Malik <salmanmk@xxxxxxxx>

Date: Mon, 22 Mar 2010 07:32:35 +0000

Thanks Tamas. And how do I do it other way around ? If I want the conversations for the inner IP's only ?

From: Tamas.Varga@xxxxxxxxxxxx
To: wireshark-users@xxxxxxxxxxxxx
Date: Fri, 19 Mar 2010 16:16:02 +0100
Subject: Re: [Wireshark-users] Tshark - GTP problem

Turn off dissection of the GTP T-PDUs, then you will be able to filter to the "outer" IP address.

For this purpose, go Edit -> Preferences -> Protocols -> GTP and uncheck "Dissect T-PDU".

cheers,

Tamas

From: wireshark-users-bounces@xxxxxxxxxxxxx [mailto:wireshark-users-bounces@xxxxxxxxxxxxx] On Behalf Of Salman Malik
Sent: Sunday, March 14, 2010 11:55
To: wireshark-users@xxxxxxxxxxxxx
Subject: [Wireshark-users] Tshark - GTP problem

I am trying to filter conversation statistics for headers above GTP using: -q -z conv,udp . But tshark seems to give stats about the headers in GTP payload. I mean not only do I get udp conversation stats of hosts above GTP, but also of those in the payload of GTP. how can I distinguish/filter the two out ?

Hotmail: Powerful Free email with security by Microsoft. Get it now.

References:
- [Wireshark-users] Tshark - GTP problem
  - From: Salman Malik
- Re: [Wireshark-users] Tshark - GTP problem
  - From: Tamás Varga

Prev by Date: [Wireshark-users] How calculate dealy VoIP communication
Next by Date: Re: [Wireshark-users] jitter calculation example on wireshark wiki
Previous by thread: Re: [Wireshark-users] Tshark - GTP problem
Next by thread: [Wireshark-users] Network Pausing during Streaming/File Sharing
Index(es):
- Date
- Thread